Security changes
- Added middleware to enforce secure headers in both backend and frontend, including HSTS, CSP, and various security policies.
- Replaced basic authentication with JWT bearer token for admin routes and login functionality.
- Implemented safe URL parsing and validation for remote resources.
- Improved error handling and response messages for authentication processes.
- Updated frontend to handle JWT tokens and manage session cookies securely.
- Refactored template installation logic to ensure safe file paths and identifiers.
- Enhanced HTML rendering functions to escape user input and prevent XSS vulnerabilities.
- Fixed versioning display on dashboard